46562ffdf73da6a6ab4e165fc5e007f0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

46562ffdf73da6a6ab4e165fc5e007f0_NeikiAnalytics
Size

48KB
MD5

46562ffdf73da6a6ab4e165fc5e007f0
SHA1

bfe74d78271f648f818c83c4371cc4b5c3073c07
SHA256

3ce1ee10447ed5bbf2e430b099b92c211d8ff7c42cb8a0de970c335a162481ec
SHA512

12ed52386ec8ef890b8ef382b388c43cdb731b1322ea2229a1cd64eecc2f5e3e5762d1fcbddf2db5ebdb4bd878d647988d9d111324f2bccade3c8620c158ca21
SSDEEP

768:jZ6ePW/nMGErEc6m9uG7+kyguwHSStSRniE/3R3KGeh:xFrtB9uGCH4SStSpi4h3Veh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46562ffdf73da6a6ab4e165fc5e007f0_NeikiAnalytics

Files

46562ffdf73da6a6ab4e165fc5e007f0_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

270fe8e208a5d8cab84645bff753a870

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

GetDeviceCaps

kernel32

LoadLibraryA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
CloseHandle
WaitForSingleObject
OpenProcess
CreateProcessA
GetStartupInfoA
GetTempFileNameA
GetTempPathA
FreeLibrary
GetProcAddress
GetLastError
DeleteCriticalSection
GetLocaleInfoA
CreateFileA
lstrlenA
lstrcpyA
OpenFile
SetFilePointer
ReadFile
WriteFile

user32

LoadStringA
ReleaseDC
GetDC
SetCursor
LoadCursorA

ole32

OleUninitialize
OleInitialize

winmm

mmioWrite
mmioCreateChunk
mmioOpenA
mmioStringToFOURCCA
mmioAscend
mmioDescend
mmioRead
mmioClose
mmioSeek

mfc42

ord823
ord1182
ord342
ord1253
ord825

msvcrt

_stricmp
calloc
_ftol
_initterm
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_purecall
realloc
remove
_getcwd
strncat
_chdir
sprintf
strncmp
free
__CxxFrameHandler
_getdrive
_chdrive

Exports

Exports

FilterEntry
FilterEntry01
FilterEntry02
FilterEntry03

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

270fe8e208a5d8cab84645bff753a870

Headers

File Characteristics

Imports

gdi32

kernel32

user32

ole32

winmm

mfc42

msvcrt

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 1KB